STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← MA-4 — Nonlocal Maintenance

CCI-000879

Definition

The organization terminates sessions and network connections when nonlocal maintenance is completed.

Parent Control

MA-4Nonlocal MaintenanceMaintenance

Linked STIG Checks (20)

V-255956CAT IThe Arista network device must terminate all network connections associated with a device management session at the end of the session, or the session must be terminated after 10 minutes of inactivity except to fulfill documented and validated mission requirements.Arista MLS EOS 4.2x NDM Security Technical Implementation GuideV-219310CAT IIThe Ubuntu operating system must immediately terminate all network connections associated with SSH traffic after a period of inactivity.Canonical Ubuntu 18.04 LTS Security Technical Implementation GuideV-269789CAT IThe Dell OS10 Switch must terminate all network connections associated with a device management session at the end of the session, or the session must be terminated after five minutes of inactivity except to fulfill documented and validated mission requirements.Dell OS10 Switch NDM Security Technical Implementation GuideV-217408CAT IThe BIG-IP appliance must be configured to terminate all management sessions after 10 minutes of inactivity.F5 BIG-IP Device Management Security Technical Implementation GuideV-234213CAT IIThe FortiGate device must terminate idle sessions after 10 minutes of inactivity.Fortinet FortiGate Firewall NDM Security Technical Implementation GuideV-237815CAT IIThe storage system must terminate all network connections associated with a communications session at the end of the session, at shutdown, or after 10 minutes of inactivity.HPE 3PAR StoreServ 3.2.x Security Technical Implementation GuideV-266941CAT IAOS must terminate all network connections associated with a device management session at the end of the session, or the session must be terminated after five minutes of inactivity except to fulfill documented and validated mission requirements.HPE Aruba Networking AOS NDM Security Technical Implementation GuideV-215320CAT IIAIX must set inactivity time-out on login sessions and terminate all login sessions after 10 minutes of inactivity.IBM AIX 7.x Security Technical Implementation GuideV-255749CAT IIThe WebGUI of the MQ Appliance network device must terminate all sessions and network connections when nonlocal device maintenance is completed.IBM MQ Appliance v9.0 NDM Security Technical Implementation GuideV-66535CAT IIThe Juniper SRX Services Gateway must immediately terminate SSH network connections when the user logs off, the session abnormally terminates, or an upstream link from the managed device goes down.Juniper SRX SG NDM Security Technical Implementation GuideV-66601CAT IIIThe Juniper SRX Services Gateway must terminate the console session when the serial cable connected to the console port is unplugged.Juniper SRX SG NDM Security Technical Implementation GuideV-254122CAT IINutanix AOS must automatically terminate a user session after inactivity time-outs have expired or at shutdown.Nutanix AOS 5.20.x OS Security Technical Implementation GuideV-261332CAT IISLEM 5 must be configured so that all network connections associated with SSH traffic are terminated after 10 minutes of becoming unresponsive.SUSE Linux Enterprise Micro (SLEM) 5 Security Technical Implementation GuideV-241005CAT IICommon Access Card (CAC)-based authentication must be enabled and enforced on the Tanium Server for all access and all accounts.Tanium 7.0 Security Technical Implementation GuideV-234066CAT IICommon Access Card (CAC)-based authentication must be enabled and enforced on the Tanium Server for all access and all accounts.Tanium 7.3 Security Technical Implementation GuideV-265327CAT IThe NSX Manager must terminate all network connections associated with a session after five minutes of inactivity.VMware NSX 4.x Manager NDM Security Technical Implementation GuideV-240468CAT IIThe SLES for vRealize must terminate all sessions and network connections related to nonlocal maintenance when nonlocal maintenance is completed.VMware vRealize Automation 7.x SLES Security Technical Implementation GuideV-239561CAT IIThe SLES for vRealize must terminate all sessions and network connections related to nonlocal maintenance when nonlocal maintenance is completed.VMware vRealize Operations Manager 6.x SLES Security Technical Implementation GuideV-256482CAT IIThe Photon operating system must set a session inactivity timeout of 15 minutes or less.VMware vSphere 7.0 vCenter Appliance Photon OS Security Technical Implementation GuideV-258840CAT IIThe operating system must automatically terminate a user session after inactivity time-outs have expired.VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 Security Technical Implementation Guide